GKaszewski/movies-diary
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

refactor: enforce password min-length via domain Password value object
Some checks failed
CI / Check / Test (push) Failing after 49s
Details

Browse Source
This commit is contained in:
Gabriel Kaszewski
2026-06-10 03:15:43 +02:00
parent d8cff33679
commit c4d6b68ef9
4 changed files with 59 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
crates/application/src/auth/register.rs
View File

@@ -1,24 +1,17 @@
use domain::{
errors::DomainError,
models::User,
value_objects::{Email, Username},
value_objects::{Email, Password, Username},
};
use crate::{auth::commands::RegisterCommand, context::AppContext};
const MIN_PASSWORD_LENGTH: usize = 8;
pub async fn execute(ctx: &AppContext, cmd: RegisterCommand) -> Result<(), DomainError> {
if !ctx.config.allow_registration {
return Err(DomainError::Unauthorized("Registration is disabled".into()));
}
if cmd.password.len() < MIN_PASSWORD_LENGTH {
return Err(DomainError::ValidationError(
"Password must be at least 8 characters".into(),
));
}
let password = Password::new(cmd.password)?;
let email = Email::new(cmd.email)?;
let username = Username::new(cmd.username)?;
@@ -34,7 +27,7 @@ pub async fn execute(ctx: &AppContext, cmd: RegisterCommand) -> Result<(), Domai
));
}
let hash = ctx.services.password_hasher.hash(&cmd.password).await?;
let hash = ctx.services.password_hasher.hash(password.value()).await?;
ctx.repos
.user
.save(&User::new(email, username, hash, cmd.role))

16
crates/application/src/auth/tests/register.rs
View File

@@ -46,3 +46,19 @@ async fn test_register_duplicate_email_fails() {
let result = register::execute(&ctx, cmd("bob@example.com")).await;
assert!(result.is_err(), "duplicate email should fail");
}
#[tokio::test]
async fn test_register_short_password_fails() {
let ctx = TestContextBuilder::new().build();
let result = register::execute(
&ctx,
RegisterCommand {
email: "x@y.com".to_string(),
username: "testuser".to_string(),
password: "short".to_string(),
role: UserRole::Standard,
},
)
.await;
assert!(result.is_err());
}